MediaFire blocking Skipscreen again!!
Saturday, November 07, 2009
Wednesday, September 09, 2009
Firefox 3.0.14 Release
Users can download the full version from here.
One can also do a update instead by going to Help > Check for Updates in Firefox.
Push updates is also available.
MFSA 2009-51 Chrome privilege escalation with FeedWriter
MFSA 2009-50 Location bar spoofing via tall line-height Unicode characters
MFSA 2009-49 TreeColumns dangling pointer vulnerability
MFSA 2009-48 Insufficient warning for PKCS11 module installation and removal
MFSA 2009-47 Crashes with evidence of memory corruption (rv:1.9.1.3/1.9.0.14)
#Fixed several stability issues.
Monday, August 24, 2009
Tweak Allows Installing Any Win7 Version from One DVD
Once deleted, you'll get a menu of choices, as shown above. You can select any version of Windows 7 to install, and thus try out any version, to see if you really, really want to buy that version.
Via Hot Hardware
Sunday, August 09, 2009
Monday, August 03, 2009
Firefox 3.0.13 Release
Users can download the full version from here.
One can also do a update instead by going to Help > Check for Updates in Firefox.
Push updates is also available.
MFSA 2009-44 Location bar and SSL indicator spoofing via window.open() on invalid URL
MFSA 2009-43 Heap overflow in certificate regexp parsing
MFSA 2009-42 Compromise of SSL-protected communication
Saturday, August 01, 2009
30 Dumb Inventions
The 20th century saw many astounding technological innovations. The automobile revolutionized the way people live and work, the internet changed the way people think about information, and the U.S. of A put a man on the moon. But some technological advances that came in the earlier part of the 20th centry weren't exactly meant for the history books. Because they were stupid.
Via LIFE
Tuesday, July 21, 2009
Firefox 3.0.12 Release
Users can download the full version from here.
One can also do a update instead by going to Help > Check for Updates in Firefox.
Push updates is also available.
MFSA 2009-40 Multiple cross origin wrapper bypasses
MFSA 2009-39 setTimeout loses XPCNativeWrappers
MFSA 2009-38 Data corruption with SOCKS5 reply containing DNS name longer than 15 characters
MFSA 2009-37 Crash and remote code execution using watch and __defineSetter__ on SVG element
MFSA 2009-36 Heap/integer overflows in font glyph rendering libraries
MFSA 2009-35 Crash and remote code execution during Flash player unloading
MFSA 2009-34 Crashes with evidence of memory corruption (rv:1.9.1/1.9.0.12)
#Fixed several stability issues.
#Fixed an issue introduced in Firefox 3.0.11, where Firefox would occasionally freeze when accessing the Java plug-in on Windows XP. (bug 498132)
#Fixed an issue introduced in Firefox 3.0.11, where Firefox would not save data properly when a user stored their home directory on a remote location using AFP. (bug 497792)
#On Mac OS X, fixed an issue where certain AppleScripts failed to return the proper information. (bug 427448)
Friday, July 17, 2009
Dancing Paperclips on Japan's Electromagnetic Trains
The video - shot on the Rokko Liner in Kobe, Japan - shows how paperclips stand on end when the train accelerates and brakes. The magnetism, which is produced by the electric current that drives the motors located under the floor, apparently poses no harm to the human body, though it could damage credit cards, mobile phones, or other electronic devices if left on the floor. The Kobe New Transit Company, which operates the Rokko Liner (as well as the Port Liner, which uses similar trains), says extra shielding is being installed just in case.
Via Pink Tentacle
Tuesday, July 14, 2009
Monday, July 13, 2009
Vulnerability in Microsoft Office Web Components Control Could Allow Remote Code Execution
Microsoft has released an advisory related to an Office Web Components ActiveX vulnerability, it is available here. This vulnerability exists in the ActiveX control used by IE to display Excel spreadsheets. The CVE entry for the vulnerability is CVE-2009-1136. At the moment there is no patch, but there is a workaround, and it can be automated for enterprise deployment. The specific CLSIDs to set the killbit for are:
{0002E541-0000-0000-C000-000000000046}
{0002E559-0000-0000-C000-000000000046}
Start working on this on ASAP. The impact is remote code execution with the privileges of the logged in user running Internet Explorer, and might not require user intervention. As in browse to a nasty web site and be pwn3d.
Microsoft Security Research & Defense - More information about the Office Web Components ActiveX vulnerability
Microsoft Security Response Centre - Microsoft Security Advisory 973472 Released
There is a long list of affected products:
* Microsoft Office XP Service Pack 3;
* Microsoft Office 2003 Service Pack 3;
* Microsoft Office XP Web Components Service Pack 3;
* Microsoft Office Web Components 2003 Service Pack 3;
* Microsoft Office 2003 Web Components for the 2007 Microsoft Office system Service Pack 1;
* Microsoft Internet Security and Acceleration Server 2004 Standard Edition Service Pack 3;
* Microsoft Internet Security and Acceleration Server 2004 Enterprise Edition Service Pack 3;
* Microsoft Internet Security and Acceleration Server 2006;
* Internet Security and Acceleration Server 2006 Supportability Update;
* Microsoft Internet Security and Acceleration Server 2006 Service Pack 1; and
* Microsoft Office Small Business Accounting 2006.
More Info via SANS Internet Storm Center
Subscribe to:
Posts (Atom)
Posts
